URLhaus Database

You are currently viewing the URLhaus database entry for http://comsatnet.com/ComsatNet/1900_35398/?i=1 which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:1972856
URL: http://comsatnet.com/ComsatNet/1900_35398/?i=1
URL Status:Offline
Host: comsatnet.com
Date added:2022-01-13 05:35:06 UTC
Last online:2022-02-16 11:XX:XX UTC
Threat:Malware download Malware download
URLhaus blocklist:Not blocked
Spamhaus DBL :Not blocked
SURBL :Not blocked
Quad9 :Not blocked
AdGuard :Not blocked
Cloudflare :Not blocked
dns0.eu :Not blocked
ProtonDNS :Not blocked
OpenBLD :Not blocked
DNS4EU :Not blocked
Reporter: sugimu_sec
Abuse complaint sent (?): Yes (2022-01-13 05:36:11 UTC to abuse{at}1and1[dot]com)
Takedown time:1 month, 4 days, 5 hours, 27 minutes Bad (down since 2022-02-16 11:04:03 UTC)
Tags:doc emotet link epoch5 heodo link

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2022-01-14L-969.xlsmxlsm 9bbdbbf2e16c8304a30bc12313362864d0b4611b6b5564e5fa4efeb559c9a4c6n/aHeodo
2022-01-14232-83.xlsmxlsm 32247831bfb72b23c944a17a6881f8865b70f9d60875ba5c2f080c845d01c90eVirustotal results 26.98% Heodo
2022-01-14kXpOlo528202.xlsmxlsm 5e5e12a3a114f3edcabd2e37239ea81f03db5f04ae7c6a5b5436f8898489f84fn/a Heodo
2022-01-14ST_6.xlsmxlsm cf5ed745b4a6923a96dd4239ddf13cc355814ea3d0ef98f71204bc0f085937aan/a Heodo
2022-01-14708422978-74235.xlsmxlsm 427030980a8af62adaf28fc00d1ee2507de9cf4f09b4cbcd5b00b064e60d4d3dn/a 
2022-01-14IQKY_2620486.xlsmxlsm 878245ca533c239b7066ce1bb483d8cd42a8d5887954c3e4db00b5a52d46f354n/a 
2022-01-1466153-6507233.xlsmxlsm 3b63ba5e81eedd06656eca70b56b6d9490b598df1646dd83dacefe8cd52d6a77Virustotal results 23.81%Heodo
2022-01-1445530824OQSUWXCUYX11417013.xlsmxlsm 6fd0e2563b3a57caea1e0d3feb66a44be67ba02e5a317dab989189508a1117fen/a Heodo
2022-01-14794_96919.xlsmxlsm 79c581f4884e402ecb60b3932c4a43f11c84a7102e48e115094d29418102f1f8Virustotal results 25.40% Heodo
2022-01-14PFNS_22066.xlsmxlsm 07182ae5f4de5bc294feeecdd94ad0a6e8fe552c92f4b80bacd7e87b90d848bcn/a Heodo
2022-01-14HSV62795264.xlsmxlsm d8eb28ba7038dd673602a96e242b10c5af8ea2f296fe49eb1b36bf837fbeef06n/a Heodo
2022-01-14oA_111.xlsmxlsm 5388d17d28ba671fbe8a27779a4ff0a97c15a00c1a91e946824b81b38c6d8e90Virustotal results 25.40% Heodo
2022-01-14D_35562.xlsmxlsm 620279fcd1238b22b28ff6e4d98f577b33d7dcfe09e7729f6ffd76070cec42e8n/a Heodo
2022-01-14DR_62175441.xlsmxlsm 7aa44c0791b35f633ef18c39ea504a2ff2b50ab64ed914a7827846f28fff5decn/a Heodo
2022-01-14413682888.xlsmxlsm 7c9c973d048c705d801b4bcf3fa2accbfa308a614b30e96868629b866e50c417n/a Heodo
2022-01-14712922_6.xlsmxlsm 9914b76a0ba3fb9da5a56e91338779ce902665c925d401d929aadf7974293d79Virustotal results 25.42% Heodo
2022-01-13O-001046.xlsmxlsm 700465c4be1e671b009e46928a0479f311b16f05004d4e24755bb22c405781f1n/a Heodo
2022-01-13702479383-963.xlsmxlsm 731ec98a6308e19709812083b3dfba8b079aa48f36b486f2f06d7170de5d1541n/a Heodo
2022-01-134379603DMN_5574.xlsmxlsm e15f4ab1af0935e26f54b19c1221a5dd41698713dfa44c327a206ffd708f3ceen/a Heodo
2022-01-13HXYN_68.xlsmxlsm 88d07eac813b81a446e976b9d46feb95a86d3e4d0cdfb6e604d42bba8757db02Virustotal results 22.58%Heodo
2022-01-13469230560-77.xlsmxlsm 7585b5ae0e18149ef1ef83b54ff727158a1f11364edde0d8e4ecaa3462369f3bn/a 
2022-01-137214JTZWPCEKLB_91215263.xlsmxlsm cfcf60f2a598ac8e1abc547928fb7b32fa3b58afb00c098f3b6b34b77d0ffbb9n/a Heodo
2022-01-130702129084.xlsmxlsm 581fc75adefc48a9698d1bc72dce3048ee18acc2a34ef3af5c72a1f83c1761b0Virustotal results 22.58% Heodo
2022-01-133414499_1.xlsmxlsm 88876b87c1e34620663cc95177326339d7853e695ff37d35a180f61d76d019beVirustotal results 24.59% 
2022-01-13JZW196510.xlsmxlsm a82961d7ec81fbc9a29aa3a06007eb18b887dfbe3e97ca6580c7682aa6021a86Virustotal results 22.58% Heodo
2022-01-1347864487JDEMVH_51.xlsmxlsm ac61723d025f90be4b2b44d6643e6ef15327be31899b8cbdaa43c0a2fac25f5eVirustotal results 30.16% Heodo
2022-01-13G11572565.xlsmxlsm ea518dd18446672c07dfd03a7b14e0f939a89b414a670198e7cf429b6cba7d84n/a Heodo
2022-01-13jsZKA-75.xlsmxlsm 920f3ff6aeb6ae3263757fc11949ff22476eaf9c6471b521bf891b9a18192465Virustotal results 29.03% Heodo
2022-01-130841933851390.xlsmxlsm 840b14be8c10c32e02b2c43fb7fce553f9a5fd5131d87cc9d95b514583ef2d49n/a 
2022-01-13E094.xlsmxlsm 05329907bc087ee86b8ae6bda563613a6891d861b5e7eceaacd742a96de38c7fVirustotal results 30.65% 
2022-01-13ANY_90.xlsmxlsm a139884d68aacbe19a1b68501de5392ef5ba05cc3eb5a5b2ed0c347db44af4can/a 
2022-01-13NEBSA80530.xlsmxlsm 5cf53f9f40389a8c56abd3a90681dadd27c0db904fbc2422ec9baa37e84c1584Virustotal results 30.65% Heodo
2022-01-135411_188.xlsmxlsm aefebee74f868174371b6f9925e3484198f01753d2e1ed58c2b99a6c2e24de08n/a 
2022-01-13SHJD4.xlsmxlsm ac680177934f28cf84fc94b0e1f006de320955fd9f17bed4d39699cda13c8bd6n/a 
2022-01-131659_96498.xlsmxlsm dc8adc8e13d3e5a64f2d69f2163da90a19cd80594bf4db6b8d17c381312d28b6Virustotal results 30.00% Heodo
2022-01-137826455507.xlsmxlsm 3e8ac5b89fdb8697813438a75aec6df15ad029e5c499a023f5bc7a209ff1b13bn/aHeodo
2022-01-130607-52938.xlsmxlsm 603fc4bf5e141be1b30fb64551545d7f757d7f508891d17256ffc5564f3ccfc8n/a Heodo
2022-01-13S391.xlsmxlsm 115b1bbc0363cd535f4336aac31bed3fa17e2c2a4ebcb15618e55c9dfc91896bn/a Heodo
2022-01-130623420QSB499.xlsmxlsm e8da2349f8ec549d999a3e63b1f859f0452b0301aaf4fced70ecbba675b81247n/a 
2022-01-132455389062.xlsmxlsm febd9978510715acb1f4bb87d04412fb1e3e6e2720329590b6b146de515d2d85Virustotal results 31.75% 
2022-01-13522190755_87.xlsmxlsm c87454534ee25d7d677e5bab46857f861240685ce17532b788892d370096be83n/a Heodo
2022-01-13VKM_93661.xlsmxlsm 1070ee81825904e9b69247d5ecd09aa91e0be9722ff1b627740e98e0bd48ee7fn/a Heodo
2022-01-1334472_5571128.xlsmxlsm 2d009791d777c752c4fddb6e32e5d123d7ecf80145baef849436bf4879259b8en/a Heodo
2022-01-1362481VWR352462.xlsmxlsm 08c7c9f40c6db283966c794771c90b7d9f65dedfb785b861e02187f62f0dc0c8n/a Heodo
2022-01-13n05618198.xlsmxlsm 4624a6c75a73e206d26cf23225ddf8c14c9bd3fac85edc04aebf63a281aa8bd4n/a Heodo
2022-01-13QFT_0723.xlsmxlsm aeb70e41209244bbbb3f870a325ee369ce718361b2caf361f8472ce7b1b7001dn/a Heodo
2022-01-13135532039-93.xlsmxlsm e867e8691b17fd95fce36eb933b1c36744f45513e44d931d07bf95229e47bef1n/a Heodo
2022-01-13R_9534.xlsmxlsm b3a8073712469f70329fad465825f867bd6dcf83420de3004730f91ecc938138n/a Heodo
2022-01-132495-0.xlsmxlsm 125468fda9c224d8a3ccdf92f08037a343c0341a8e64dc2c1182e1d3d4e496a7n/a Heodo
2022-01-13oL4768529.xlsmxlsm cd1b8b06a27b93f21a8da161ab4af2768ecdcbe5f8f5122d89c33caf145da46cn/a 
2022-01-13yppevnr_2.xlsmxlsm 07fddbd97e1846aa7ef2fae79ea0d177a89210725b1a66a8b52bb066cc36bb1en/a Heodo
2022-01-13FG-78.xlsmxlsm 726be01c1600c33b9a3d322885ca12383ec5b64546bb389670176f77f7faf162Virustotal results 19.05% Heodo
2022-01-1347387964-831.xlsmxlsm d47dc5f481df3ec15f19e8625c29b0beaf33c401b23191b818c9ecf885e3c8dcn/a Heodo
2022-01-13LP_6596291.xlsmxlsm 2b8b0ca757e3eccb527d9ce11a9a8815f5a9ce3c6d2ed5a8711d4c109e88bd71Virustotal results 22.22% Heodo
2022-01-13HC_48793821.xlsmxlsm 1d8482afdb97aba866fc26b21eaa9f92f46ea841566bb0588150aecd4347cd45n/a Heodo
2022-01-13480589-7959679.xlsmxlsm ae4c37f20738b2bc766ca1b1437dd27be15c5a86e663f8ce3fc8be6762483305n/a Heodo
2022-01-1342175_7625.xlsmxlsm 2cfe6cc60d786a8b94d9d3114d344fb74c21e5ce5391dea3d1550df17fee05b4n/a Heodo
2022-01-13X_73.xlsmxlsm ff6fd9c7c63b598cfeaf21e261d13bc4807564dde366b8f407be4d189390f883n/a Heodo
2022-01-13WEV-80.xlsmxlsm 1080082d0eec3c4e3583b6e259b0863c746d211af8a8b6b645b21059e60f1119n/a Heodo
2022-01-1360966262526.xlsmxlsm 4dc514dc9290b966a14aadaab3d4c168419ed606a81d0a1262318d8b305cfc8dn/a Heodo
2022-01-1348842_19552.xlsmxlsm 6169a4500b717ca5de60b77b01c2c1ddf5dbe18bafd0af142248d5066eef19ecn/a Heodo
2022-01-13541ZMLSZE1.xlsmxlsm 152d0b25ca2f0f4066edf77906c112fe4e6d49c17f6fc35a039686276ad7686dn/a Heodo
2022-01-1355211160_887278.xlsmxlsm 967d8e1ecaddadf97ad824647e734535d41e1996b725dd594a03a043d3795b1fn/a Heodo
2022-01-13gSN_746569.xlsmxlsm 8e2712e45fb0cbdc5a565ba4f5582ef6b0d871a0159abaed0fb6c4d519382547Virustotal results 19.35% Heodo
2022-01-13xgfym_29.xlsmxlsm d96dba578ec6bbb043e6ef20f9f43779bd471f5329b9ba5416a0a4785564ebd6n/a Heodo